Assistant Manager - Australia IT Audit

KPMG Resource Centre (KRC) is a team of 3,000+ colleagues serving audit clients of primarily KPMG Europe and a few other countries. KRC’s services include end-to-end Audits, IT Audits, Data Analytics, Engagement Support Hub, Transaction 

Assurance and ESG, among others. The business supports multiple sectors and is currently present in Bengaluru, Gurugram, Noida and Mumbai. 

Through your work, you’ll build a global network and unlock opportunities that you may not have thought possible with access to great support, vast resources, and an inclusive, supportive environment to help you reach your full potential.

Roles & responsibilities

oReview SOX 404 assessments in accordance with the PCAOB (Public Company Accounting Oversight Board) Auditing Standards – Using work of others oEvaluate the design and operating effectiveness of technology controls (GITCs and ITACs) pertaining to Client’s Internal Controls over Financial Reporting. oConduct Process understanding discussions with the Clients as part of assessing risks arising from their use of Technology and identify control gaps within their processes. oPerform ISAE 3402, SOC 1 and SOC 2 (System and Organization Controls) assessments in accordance with the attestation standards established by the AICPA (American Institute of Certified Public Accountants), and ICAEW. oIdentify potential opportunities to drive standardization and efficiency across engagements by the use of automation. oUnderstanding of the current SSAE guidelines 
 

Mandatory  technical & functional skills

·Prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2 and SQL. ·Knowledge of security measures and auditing practices within various operating systems, databases and applications. ·Experience in assessing risks across a variety of business processes. ·Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Sr. Management and Clients. ·Experience in evaluating SOC1 reports for User organizations. ·Knowledge of Business Continuity and Disaster Recovery best practices. ·Knowledge of regulations impacting the privacy, integrity and availability of customer PII.

Exposure of having led IT Audit engagements

Educational qualifications

·BE/B-Tech/MCA/BSC-IT/MBA ·Certifications – CISA cleared/certified preferred

Work experience

·The candidate must have a minimum of 4-5 years of experience in a similar role [Big 4 experience preferred] ·Working knowledge of frameworks including, ISA 315, COSO, COBIT, ISO 27001, NIST CSF and NIST SP 800-53 is desirable